When a NIS user locks the screen and then tries to unlock again, pam_unix2.so cannot authenticate the user. Instead, new instances of unix2_chkpwd are created recursively in an endless loop. This happens because for NIS users to unlock the screen, unix2_chkpwd has to be setuid root, setgid shadow is not sufficient. Please make unix2_chkpwd setuid root again, like it once was.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: libpam-unix2 1:2.4.1-5
ProcVersionSignature: Ubuntu 3.2.0-23.36-generic-pae 3.2.14
Uname: Linux 3.2.0-23-generic-pae i686
ApportVersion: 2.0.1-0ubuntu7
Architecture: i386
Date: Thu May 24 11:18:26 2012
InstallationMedia: Ubuntu 12.04 LTS "Precise Pangolin" - Release i386 (20120423.2)
ProcEnviron:
TERM=xterm
SHELL=/bin/bash
LANG=de_DE.UTF-8
SourcePackage: libpam-unix2
UpgradeStatus: No upgrade log present (probably fresh install)
This is fixed in 1:2.4.1-6 by debian mainatiners. And it will be included in quantal
I created a backport for precise, that you could get from my PPA :
https:/